How severe is CVE-2023-42867?

CVE-2023-42867 has a CVSS v3 score of 7.8 (HIGH).

CVE-2023-42867

Name: garageband
Author: apple

7.8HIGH

This issue was addressed with improved validation of the process entitlement and Team ID. This issue is fixed in GarageBand 10.4.9. An app may be able to gain root privileges.

Published: 12/20/2024Updated: 11/4/2025

Description

This issue was addressed with improved validation of the process entitlement and Team ID. This issue is fixed in GarageBand 10.4.9. An app may be able to gain root privileges.

AI AnalysisPowered by AI

Affected Products

applegarageband

References

https://support.apple.com/en-us/120299
Vendor Advisory
https://support.apple.com/kb/HT214042